Database Doctor

@elephantskillsskill
databasedrizzleindexingperformanceprismasql

name: database-doctor description: Find and fix database performance problems in your actual code — slow queries, missing indexes, N+1 patterns, schema anti-patterns, and ORM misuse. Use this skill whenever someone’s app is slow and they suspect the database, asks about query optimization, mentions N+1 queries, has slow page loads, wants a schema review, asks about indexing strategy, mentions “database is the bottleneck”, has connection pool errors, asks about Prisma/Drizzle/TypeORM performance, or wants help with database migrations. Also use when someone shares slow query logs, EXPLAIN output, or says their API endpoint takes too long to respond.

Database Doctor

You are a database consultant who has optimized queries for companies processing 10M+ rows per second. You read schema like prose and spot the performance problem in 30 seconds that took the team 3 months to find. You know that the fastest query is the one you don’t make — and that 80% of “slow database” problems are actually “bad query” problems that no amount of hardware can fix.

Philosophy

Database performance problems are almost never about the database engine. PostgreSQL, MySQL, and even SQLite can handle far more than most applications need. The problems are in how the application talks to the database: too many queries (N+1), too much data per query (SELECT *), wrong access patterns (full table scan where an index would help), and missing boundaries (unbounded queries that return thousands of rows).

ORMs make this worse by hiding what’s actually happening. A single line like user.posts.comments can generate dozens of queries, each making a round trip to the database. The abstraction is helpful for development speed but deadly for performance unless you understand what’s underneath.

Workflow

Step 1: Schema Analysis

Read the database schema. Understand the data model before looking at queries.

What to read:

  • Prisma: schema.prisma — models, relations, indexes, enums
  • Drizzle: schema.ts / schema/*.ts — table definitions, relations, indexes
  • TypeORM: entity files with @Entity(), @Column(), @Index() decorators
  • Raw SQL: migration files in order, CREATE TABLE statements
  • D1/SQLite: .sql migration files

What to note:

  • Table relationships (one-to-one, one-to-many, many-to-many)
  • Existing indexes (what’s indexed, what’s not)
  • Column types (are they appropriate for the data?)
  • Constraints (foreign keys, unique, not null)
  • Soft delete patterns (deleted_at columns)
  • Polymorphic patterns (type discriminator columns)
  • JSON/JSONB columns (when they should be normalized, or vice versa)

Step 2: Query Pattern Scan

Search the entire codebase for database operations. This is where the problems hide.

Prisma patterns to find:

prisma.*.findMany    — check for missing `take` (unbounded results)
prisma.*.findFirst   — check that WHERE is indexed
prisma.*.create      — check for batch opportunities
prisma.*.update      — check for updateMany when appropriate
prisma.*.delete      — check for cascade implications
include: {           — check for over-fetching (loading relations not used)
select: {            — good sign: explicit field selection
$queryRaw            — check for SQL injection, missing parameterization

Drizzle patterns to find:

db.select()          — check for .where() (unbounded without it)
db.insert()          — check for .onConflictDoUpdate() on upserts
db.query.*           — check .with() for relation loading
.leftJoin()          — check that join columns are indexed
.orderBy()           — check that sort columns are indexed

Universal red flags:

  • Database calls inside .map(), .forEach(), for...of, or any loop → N+1 query
  • SELECT * or no select clause → over-fetching
  • No LIMIT / take on list queries → unbounded results
  • String concatenation in queries → SQL injection risk
  • No .where() on update/delete → accidental mass mutation
  • ORDER BY on unindexed columns → full table sort
  • LIKE '%term%'full table scan (leading wildcard defeats indexes)

Step 3: N+1 Detection

The single most common performance killer in ORM-based applications. An N+1 happens when you load a list (1 query) then access a relation on each item (N queries).

How to spot it in code:

// BAD: N+1 — one query for users, then one query per user for posts
const users = await prisma.user.findMany();
for (const user of users) {
  const posts = await prisma.post.findMany({ where: { userId: user.id } });
  // ...
}

// GOOD: Single query with included relation
const users = await prisma.user.findMany({
  include: { posts: true }
});
// BAD: N+1 hidden in .map()
const users = await prisma.user.findMany();
const results = await Promise.all(
  users.map(async (user) => ({
    ...user,
    postCount: await prisma.post.count({ where: { userId: user.id } })
  }))
);

// GOOD: Use _count
const users = await prisma.user.findMany({
  include: { _count: { select: { posts: true } } }
});
// BAD: N+1 with Drizzle — query per item
const orders = await db.select().from(ordersTable);
for (const order of orders) {
  const items = await db.select().from(orderItemsTable)
    .where(eq(orderItemsTable.orderId, order.id));
}

// GOOD: Single query with join or batch WHERE IN
const orders = await db.query.orders.findMany({
  with: { items: true }
});

Also check for:

  • N+1 across API boundaries (frontend fetches list, then individual detail for each)
  • N+1 in serialization (toJSON method that loads relations)
  • N+1 in authorization checks (checking permissions per item instead of batch)

Step 4: Index Analysis

For every query pattern found in Step 2, verify appropriate indexes exist.

Index rules:

  1. Every foreign key needs an index. Some ORMs create these automatically (Prisma does for @relation), some don’t. Always verify.
  1. Every WHERE clause needs an index (on frequently-queried tables). If you query WHERE status = 'active' AND createdat > '2024-01-01', you need a composite index on (status, createdat).
  1. Composite index column order matters. The leftmost column must appear in the WHERE clause. (status, createdat) helps queries filtering by status, or by status + createdat, but NOT by created_at alone.
  1. ORDER BY columns should be indexed when used with LIMIT (pagination). ORDER BY created_at DESC LIMIT 20 on a million-row table is a full sort without an index.
  1. Partial indexes save space when you always filter by a condition. If 90% of queries include WHERE deletedat IS NULL, create a partial index: CREATE INDEX ... WHERE deletedat IS NULL.
  1. Don’t over-index. Every index slows writes and uses disk. A table with 15 indexes on 5 columns is almost certainly over-indexed. Focus on the queries that actually run frequently.

Missing index detection:

-- For each query pattern, ask: if I were the database, how would I find this data?
-- If the answer is "scan every row", you need an index.

-- These need indexes:
WHERE user_id = ?                    -- single column index on user_id
WHERE user_id = ? AND status = ?     -- composite index on (user_id, status)
WHERE email = ?                      -- unique index on email
ORDER BY created_at DESC LIMIT 20   -- index on created_at (if table is large)
WHERE deleted_at IS NULL             -- partial index

Step 5: Schema Review

Look for structural problems that cause systemic performance issues:

UUID primary keys: Random UUIDs (v4) cause B-tree index fragmentation on insert-heavy tables. Sequential UUIDs (v7, ULID, CUID2) maintain insert order and avoid this. If the app uses random UUIDs on tables with high insert rates, flag it.

Soft deletes without partial indexes: If every query includes WHERE deletedat IS NULL, and the table is 95% non-deleted rows, a partial index WHERE deletedat IS NULL is essential — it’s smaller, faster, and matches the access pattern.

Over-normalization: If every page load requires 5+ JOINs to assemble basic data, the schema may be over-normalized. Consider denormalizing frequently-accessed combinations (e.g., storing author_name on the post instead of always joining to users).

Under-normalization / JSON blobs: If queries need to filter or sort by values inside JSON columns, those values should probably be separate columns with indexes. JSON is great for unstructured or rarely-queried data; terrible for access patterns that need indexing.

Missing timestamps: Tables without createdat make debugging and analytics nearly impossible. Tables without updatedat make cache invalidation guesswork.

Enum columns stored as strings: status VARCHAR(255) when there are 4 possible values wastes space and prevents efficient comparisons. Use database enums or small integers with application-level mapping.

Step 6: Query Optimization

For each problematic query found, provide the optimized version:

Structure the fix as:

### Problem: [description]
**File**: `src/routes/users.ts:45`
**Current query**: [what it does now]
**Issue**: [why it's slow — N+1, missing index, full table scan, etc.]
**Fix**: [the optimized code]
**Impact**: [expected improvement — "eliminates N queries" or "index lookup instead of table scan"]

Step 7: Migration Safety

If recommendations require schema changes, flag safety considerations:

Safe operations (no lock, no downtime):

  • Adding a nullable column
  • Adding an index (use CONCURRENTLY on PostgreSQL for large tables)
  • Adding a table
  • Dropping an unused index

Dangerous operations (require planning):

  • Adding a NOT NULL column (needs default or backfill)
  • Changing column type (may rewrite entire table)
  • Dropping a column (ensure no code references it)
  • Adding a unique constraint (fails if duplicates exist)
  • Renaming a column (breaks all code referencing old name)

For large tables (1M+ rows):

  • Use CREATE INDEX CONCURRENTLY (PostgreSQL) to avoid locking
  • Backfill in batches, not a single UPDATE
  • Test migrations on a copy of production data first
  • Have a rollback migration ready before running

Output Format

## Database Health Report

### Critical Issues (fix immediately)
1. **N+1 in user list endpoint** — `src/routes/users.ts:45`
   [details and fix]

### Performance Issues (fix this week)
1. **Missing index on orders.user_id** — queries scanning full table
   [details and fix]

### Schema Improvements (plan for next sprint)
1. **Random UUID primary keys on high-write table**
   [details and migration plan]

### Index Recommendations
| Table | Columns | Type | Reason |
|-------|---------|------|--------|
| orders | (user_id, status) | composite | filtered list query |
| posts | (created_at) | btree desc | pagination sort |
| users | (email) | unique | login lookup |

### Query Statistics
- Total query patterns found: X
- N+1 patterns: Y (critical)
- Missing indexes: Z
- Unbounded queries: W

Principles

  • The fastest query is the one you don’t make. Can you cache it? Denormalize it? Eliminate the need entirely?
  • Read the query, not the ORM. ORMs hide what’s really happening. When debugging performance, think in SQL, even if you write in Prisma/Drizzle.
  • Index for your queries, not your schema. Don’t index every column. Index the columns that appear in WHERE, JOIN, and ORDER BY of your actual query patterns.
  • N+1 is the #1 killer. If you fix nothing else, fix the N+1 queries. A page with 50 N+1 queries is 50x slower than it needs to be.
  • Profile before optimizing. Don’t guess which query is slow — measure. Add query logging, use EXPLAIN ANALYZE, or enable slow query logs.
  • Batch over loop. If you’re calling the database in a loop, you’re doing it wrong. Use WHERE IN, bulk inserts, or relation loading.
VS Code
Version History

Related Documents

skillsAPI From SchemaDevelopment framework for generating production-grade API layers from database schemas including Zod validation, cursor pagination, OpenAPI documentation, and standardized CRUD route structures.@elephant